2 matches found
rConfig <= 3.9.6 Multiple Vulnerabilities
rConfig is prone to multiple vulnerabilities. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2020-23150
CVE-2020-23150 concerns rConfig 3.9.5. Concrete details in the connected docs show a SQL injection vulnerability in config.inc.php that can be exploited by sending a crafted GET request to install/lib/ajaxHandlers/ajaxDbInstall.php to access sensitive database information. Affected software: rCon...